1. Home
  2. Categories

Categories

  • Announcements regarding our community

    Release
    91
    Topics
    138
    Posts

    A

    Hey, are you interested in learning more about JSON Web Tokens and how to protect your APIs with them?

    Join my talk hosted by the great peeps at Gun.io!

    https://www.meetup.com/gundotio/events/302264818/

  • Connect with other community members to discuss CIAM, architecture, app development, and more.

    556
    Topics
    1.8k
    Posts

    E

    @mark-robustelli No worries, we do have a working setup now after a slew of theme tweaks. That said there is still an outstanding question and a possible bug (both low priority).

    The question: What happened to the ability to complete an oauth authentication flow by POSTing a code to /oauth2/passwordless? That worked in 1.48.3 but not in 1.55.1.

    The potential bug: Why does a GET call to /oauth2/passwordless/<invalid code> redirect the user to the browser confirmation page (even when the request is from the same browser) instead of an invalid code page?

  • Share your tips and feedback with FusionAuth and the FusionAuth community.

    86
    Topics
    284
    Posts

    T

    @yuriy-barvenko Ok, I'm in the same boat, but I think it is most likely the database back-end. Reason being, I migrated our database from the docker instance to a stand alone instance of PostgreSQL and I immediately noticed some performance degradation.

    I'm running version 1.55.1 of FusionAuth and PostgreSQL version 14. There are documented performance improvements in both FusionAuth and PostgreSQL. I'll be updating my version of PostgreSQL and will report back.

  • You've got questions? We've got answers.

    1.6k
    Topics
    4.9k
    Posts

    L

    @hamza-chouaibi said in FusionAuth setting wrong domain the the cookie io games:

    I am using custom local domains.

    https://auth.domain.test <= FusionAuth
    https://app.domain.test <= Angular app

    I also tried FusionAuth at https://auth.app.domain.test but I still get the same issue and chrome block the cookie.

    I am getting issue with cookies, the domain on cookies is test.

    Example: app.at_exp=1742980022; Domain=test; Max-Age=3599; Path=/; SameSite=Lax; Secure

    Any idea why we endup wuth Domain=test ?

    The SameSite=Lax attribute restricts the cookie from being sent with cross-site requests. If your application is making requests across subdomains, you may need to adjust this setting to SameSite=None; Secure for cross-origin requests.

  • Share and discuss community blog posts.

    169
    Topics
    190
    Posts

  • A read-only knowledge base of questions asked and answered about FusionAuth.

    9
    Topics
    18
    Posts

    W

    Existing Role Limitations in FusionAuth FusionAuth provides predefined Admin UI roles, which are not modifiable. You can review the available roles here:
    FusionAuth Admin UI Roles The default FusionAuth application roles cannot be changed, which means read-only roles are not currently available. Requesting Read-Only Roles as a Feature FusionAuth does not currently support read-only access roles for applications or tenants. The likely reason for this is that users who need to view application/tenant properties often also need to update them. However, you can submit a feature request to suggest adding read-only roles:
    Submit a Feature Request Workaround: Implement a Custom Read-Only View

    If immediate read-only access is required, consider:

    Using the FusionAuth APIs to create a custom dashboard where users can view but not edit data. Relevant APIs for this purpose: Application API Tenant API

    Summary

    No built-in read-only roles exist for applications or tenants. FusionAuth Admin UI roles are not modifiable. You can request read-only roles as a feature via GitHub. A workaround is to build a custom, API-based read-only view.

  • Connect with people who can help you with FusionAuth projects.

    13
    Topics
    15
    Posts